Описание
An information disclosure vulnerability exists in the cm_processREQ_NC opcode of Asus RT-AX82U 3.0.0.4.386_49674-ge182230 router's configuration service. A specially-crafted network packets can lead to a disclosure of sensitive information. An attacker can send a network request to trigger this vulnerability.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:asus:rt-ax82u_firmware:3.0.0.4.386_49674-ge182230:*:*:*:*:*:*:*
cpe:2.3:h:asus:rt-ax82u:-:*:*:*:*:*:*:*
EPSS
Процентиль: 53%
0.00303
Низкий
7.5 High
CVSS3
7.5 High
CVSS3
Дефекты
CWE-119
NVD-CWE-noinfo
Связанные уязвимости
CVSS3: 7.5
github
около 3 лет назад
An information disclosure vulnerability exists in the cm_processREQ_NC opcode of Asus RT-AX82U 3.0.0.4.386_49674-ge182230 router's configuration service. A specially-crafted network packets can lead to a disclosure of sensitive information. An attacker can send a network request to trigger this vulnerability.
EPSS
Процентиль: 53%
0.00303
Низкий
7.5 High
CVSS3
7.5 High
CVSS3
Дефекты
CWE-119
NVD-CWE-noinfo